VulnerableApp icon indicating copy to clipboard operation
VulnerableApp copied to clipboard

Published 20 hours ago verified publisher icon SasanLabs

feat: implement header param injection handling for JWT vulnerabilities

Open leiberbertel opened this issue 1 year ago • 3 comments

Added handling for header parameter injection in JWTVulnerability.java, addressing the missing attack vector noted in issue #413. Follows https://portswigger.net/web-security/jwt guidelines.

Ref: #413

leiberbertel avatar Aug 19 '24 03:08 leiberbertel

@preetkaran20, I hope you are well, thanks for your patience! I wanted to consult you if it would be possible for me to upload some unit tests for the level I created. If so, I can create the card, or if you prefer, you could do it.

I remain attentive to your answer.

leiberbertel avatar Oct 03 '24 01:10 leiberbertel

@preetkaran20, I hope you are well, thanks for your patience! I wanted to consult you if it would be possible for me to upload some unit tests for the level I created. If so, I can create the card, or if you prefer, you could do it.

I remain attentive to your answer.

@leiberbertel It is upto you. I am fine with everything.

preetkaran20 avatar Nov 10 '24 01:11 preetkaran20

@preetkaran20, I hope you are well, thanks for your patience! I wanted to consult you if it would be possible for me to upload some unit tests for the level I created. If so, I can create the card, or if you prefer, you could do it. I remain attentive to your answer.

@leiberbertel It is upto you. I am fine with everything.

@preetkaran20 Okay, in that case, I'll upload the changes.

leiberbertel avatar Nov 10 '24 04:11 leiberbertel

Hi @preetkaran20, how are you? It's been a while hahaha, the changes are up in my branch.

leiberbertel avatar Jul 14 '25 05:07 leiberbertel

@leiberbertel Thanks for reminding me. Merging it now.

preetkaran20 avatar Jul 16 '25 02:07 preetkaran20

hahaha, it was a pleasure:) @preetkaran20

leiberbertel avatar Jul 16 '25 18:07 leiberbertel